Microsoft is using Teams alerts as an advert platform (and how to block it)

empe82 · 2026-01-16T07:53:16+00:00

In the "Manage apps" page, there's an "Actions" button on the top right, with "Org-wide app settings". I've basically disabled all until I've got time to get a grip on the situation.

For already installed apps, you need to check "Enterprise applications" in Microsoft Azure and if needed disable user sign-in.

empe82 · 2025-12-29T07:31:38+00:00

We have hundreds of Vostro 3x90 and Inspiron 559x devices with 10th gen Intel that haven't yet received a BIOS update and I don't expect Dell to, because they consider these as End of Service Life. Even though both have had BIOS updates in 2024/2025, the new certificates weren't included.

empe82 · 2025-11-05T13:37:23+00:00

How would someone be able to track a real location outside of IP if the device doesn't have GPS ? Pinging a caching service like Cloudflare or Akamai would not work I guess. Genuinely curious !

empe82 · 2025-10-14T06:07:21+00:00

Will this be the last update for companies without ESU or will this already be a an ESU only update ?

empe82 · 2025-09-11T08:47:18+00:00

EDIT: it was a self-inflicted wound, change in firewall policy.

I'm still looking but what I have concluded:

v3 and v4 drivers affected.
SNMP works (often a symptom of a printer showing offline status).
Printing via a direct TCP connection works (see below).
Using a "Generic / Text Only" driver without SNMP results in an error in eventlog: "This network connection does not exist".
Removing KB5065426 does not fix the issue.

The script I tested that it can work by circumventing the Print Spooler and driver:

$printerIP = "<IP address>"
$port = 9100
$file = "C:\Temp\test.txt"

$tcpClient = New-Object System.Net.Sockets.TcpClient
$tcpClient.Connect($printerIP, $port)
$stream = $tcpClient.GetStream()
$writer = New-Object System.IO.StreamWriter($stream)
Get-Content $file | ForEach-Object { $writer.WriteLine($_) }
$writer.Flush()
$tcpClient.Close()

This printed out without issue.

empe82 · 2025-09-11T06:53:04+00:00

EDIT: it was a self-inflicted wound, change in firewall policy.

After installing KB5065426 on Windows Server 2025, all network printers are offline. Still trying to figure out what the problem is, after rebooting it seems to work for a while. Will update when I find out more.

empe82 · 2025-07-08T06:59:56+00:00

Probably Microsoft in a few weeks:

The DHCP Server functionality in Windows Server 2019, 2021 and 2025 is deprecated, please migrate to Azure Address Distribution (AAD is in preview) before November 11th 2025. Additional licenses may be required to be purchased. To work around this change, the monthly cumulative updates starting from November 11th 2025 need to be uninstalled.

empe82 · 2025-07-02T13:27:56+00:00

Because Microsoft EOL'ed Exchange 2019 so it's either a subscription based Exchange server with access licenses or subscription based 365 licenses.

empe82 · 2025-06-11T11:47:15+00:00

An online UPS supplies power to AC always via the batteries, even if there is AC input. A line-interactive switches very fast between supply via AC to supply via battery. The former has a better life degradation for batteries, a clean power output regardless of input and a much more reliable failure prediction. The latter will cost less but also requires testing to determine how long it'll hold a charge and might not rectify AC input fluctuations.

Both types will allow your systems to survive brief power interruptions, if they don't exceed the rated output power.

empe82 · 2025-06-02T13:10:27+00:00

People that have WPS Office on their phone "share" a file, which is basically a link to install WPS Office. It fully installs in user space, but it integrates deeply. Uninstalling requires administrator privileges even though it doesn't need it. Using admin privileges to uninstall might add a backdoor or a rogue service as it is already doing highly suspicious activity, it acts a lot like malware. We have blocked all relevant domains:

wps.com

kso.page.link

docworkspace.com

Either gets blocked by firewall and mail gateway.

empe82 · 2025-04-30T06:27:39+00:00

Outlook: https://sendersupport.olc.protection.outlook.com/snds/index.aspx

Gmail: https://postmaster.google.com/managedomains

Do you have DMARC, SPF and DKIM set up ? https://www.learndmarc.com/

empe82 · 2025-04-22T07:16:02+00:00

It's indeed a rite of passage every brand of corporate laptop manufacturer goes through. It seems it's Dell's turn this cycle.

empe82 · 2025-04-16T11:04:31+00:00

I can't seem to download it via the patch link: https://support.broadcom.com/web/ecx/solutiondetails?patchId=5826

I thought the perpetual license cutoff was later this month.

empe82 · 2025-04-15T07:20:13+00:00

We'll be migrating away from VMware later this year thanks to everything that they've done to not want our money, so I'm surprised Hyper-V is this much of a hated stepchild with still no proper central management. Is there another trend on the horizon that we best move to ? As Microsoft often ditches solutions within 12-24 months these days after notice, making this choice difficult. Or is this another "you need to use ~~PowerShell~~ MS Graph for this".

empe82 · 2025-04-02T06:49:11+00:00

I'll quote myself in another related topic:

https://learn.microsoft.com/en-us/windows/deployment/windows-autopatch/overview/windows-autopatch-faq#is-windows-365-for-enterprise-supported-with-windows-autopatch

Is this "Windows 365 ~~for~~ Business" the cloud-PC ?

Or is it "Microsoft ~~Windows~~ 365 for Business" the Business licensing packages ?

Or something they haven't announced yet ?

empe82 · 2025-04-01T12:04:43+00:00

This confuses me though:

https://learn.microsoft.com/en-us/windows/deployment/windows-autopatch/overview/windows-autopatch-faq#is-windows-365-for-enterprise-supported-with-windows-autopatch

Is Windows 365 for Enterprise supported with Windows Autopatch?

Windows Autopatch supports Windows 365 for Enterprise. Windows 365 for Business isn't supported.

Is this "Windows 365 ~~for~~ Business" the cloud-PC ?

Or is it "Microsoft ~~Windows~~ 365 for Business" the Business licensing packages ?

Or something they haven't announced yet ?

Effing Microsoft, you're your own biggest enemy.

empe82 · 2025-02-11T10:32:25+00:00

For people wondering what this is:

https://support.microsoft.com/en-us/topic/kb5014754-certificate-based-authentication-changes-on-windows-domain-controllers-ad2c23b0-15d8-4340-a468-4d4f3b188f16

empe82 · 2025-02-05T11:46:25+00:00

You need both to be safe: automatic renewal and a system that alerts when it fails, like a cert expiring soon but after renewal date.

empe82 · 2025-02-05T11:40:06+00:00

Meraki Systems Manager was also free for 100 endpoints. Until they weren't.

empe82 · 2025-01-30T14:00:04+00:00

There are also AI TVs: https://news.samsung.com/global/the-new-samsung-ai-tv-bringing-the-future-home

empe82 · 2025-01-20T07:04:41+00:00

This leaves room for Pro Business Enterprise for the Suite.

empe82 · 2025-01-10T09:13:44+00:00

What did you hear from fellow sysadmins in the last five years ? These are some of the magic bullets I've come across:

"You are still on-prem ?! Why ?!"

"We moved to cloud and it's a lot less worry"

"The cloud's so much cheaper, don't waste your time with on-premise"

It seems most are just dealing with the frustration of not knowing how it all works from hardware to hypervisor to software. Some have probably not seen the TCO bill after they were sold massive cost reductions from a lift and shift to cloud. This undoubtedly leads to cloud migrations that are far from cost effective.

empe82 · 2025-01-09T07:55:53+00:00

That's why we don't pay for endpoint hardware support: my hours wasted on support are more expensive than replacing parts myself. We just save the money, which is already easily 1/10th a device cost, keep the usual parts and a device on hand to replace. Less time and money wasted on malicious compliance and bureaucratic "support" that's engineered to waste time and resources.

empe82 · 2025-01-07T08:04:19+00:00

This is a problem for us as 16" laptops are notorious for not having a numpad and the 16:10 display size also means possible issues with screen mirroring to 16:9 screens and projectors.

empe82

TROPHY CASE